FTP Security on Redhat 9.0

weezel · 06-12-2004, 12:14 PM

Hi there,

I currently run vsftpd on redhat 9.0

My question is, when i log in via ftp, using an account that isnt an owner on the server, in the remote dir box, it lists, "/home/weezel" it also allows to to go from that, to / something that isnt exactly secure!

Any ideas how i fix ???

thankyou

david_ross · 06-12-2004, 02:17 PM

From "man vsftpd.conf":

Quote:

chroot_local_user
If set to YES, local users will be placed in a chroot() jail in their home directory after login. Warning: This option has security implications, especially if the users have upload permission, or shell access. Only enable if you know what you are doing. Note that these security implications are not vsftpd specific. They apply to all FTP daemons which offer to put local users in chroot() jails.

Default: NO

weezel · 06-12-2004, 07:53 PM

Brilliant, Thankyou

Okay, so i did that and it worked, but, it places the user in / with nothing visible in that dir.

where/what is that dir on the server? i tried adding files to the users home dir, but they didnt show up, and they were the owner.

?? im confused!

EDIT>>> Its working now, going to play with it a bit

probably my last question... How do you bind vsftpd to another port, other than 21? i have 22 through 28 open on my router, forwarded to that pc, and would like to use one of those

david_ross · 06-13-2004, 11:11 AM

From "man vsftpd.conf":

Quote:

listen_port
If vsftpd is in standalone mode, this is the port it will listen on for incoming FTP connections.

Default: 21

Take a look at the man pages first - it will save you a lot of time.

weezel · 06-13-2004, 11:16 AM

u rock man

ty ty